Symptoms
GDPR Deployment faild with error like:
2018-05-11 09:19:11.933 [DEBUG] <class 'poaupdater.uUtil.ExecFailed'> occurred during run [#1] ip route add 10.96.0.0/12 via 10.35.200.26 ['/usr/local/pem/bin/pleskd_ctl', '-f', '/usr/local/pem/etc/pleskd.props', '-s', '1', 'processHCL', '/tmp/tmpeeX2Qm', '1'] exited with non-zero status 1, stderr: DEBUG [ processHCL] ===> ENTRY DEBUG [ processHCL] <=== EXIT (by exception) [0.113564] Exception ! ERROR [ HCL Process] ExSystem: module_id:'Common', ex_type_id:'1',Message:'Internal error: /bin/sh /bin/sh -c ip route add 10.96.0.0/12 via 10.35.200.1 failed with code 2 saying: STDOUT: '' STDERR 'RTNETLINK answers: Network is unreachable ' PA agent endpoint: https://10.15.0.1:8352/process.', deprecated_codes = (0, 0), properties = { reason: '/bin/sh /bin/sh -c ip route add 10.96.0.0/12 via 10.35.200.1 failed with code 2 saying: STDOUT: '' STDERR 'RTNETLINK answers: Network is unreachable ' PA agent endpoint: https://10.15.0.1:8352/process', } , stdout: 2018-05-11 09:19:11.933 [DEBUG] An error has occurred, please select next action: (r)etry/abort/ignore:Where
10.15.0.1/24is IP address of OA Management node,10.35.200.1/27- IP address of GDPR Application host.On attempt to add required route manually following error appears:
[root@lablinmn02 ~]# ip route add 10.96.0.0/12 via 10.35.200.1 RTNETLINK answers: Network is unreachable
Cause
OA MN and GDPR application host are located in different subnets. In order to be able to add required route, default gateway (GDPR Application Host) must be located in the same subnet where OA MN is located.
Resolution
- Deploy OpenVPN in K8s cluster and connect OA MN to K8s cluster by OpenVPN.
- Reconfigured network on required hosts to allow connections from OA MN to GDPR Application host by direct IP address.
For additional details, please check GDPR Compliance Guide.